Closed
Bug 323022
Opened 19 years ago
Closed 19 years ago
Crash [@ nsSpaceManager::GetTranslation() line 196] with null SpaceManager on SVG documents
Categories
(Core :: Layout: Block and Inline, defect)
Tracking
()
RESOLVED
DUPLICATE
of bug 310436
People
(Reporter: bc, Unassigned)
References
Details
(Keywords: crash, testcase, Whiteboard: [sg:dupe 310436] testcases from bug 306663)
Crash Data
Attachments
(2 files)
No description provided.
Comment 2•19 years ago
|
||
Crashes in nsSpaceManager::GetTranslation, called by nsBlockBandData::Init. In a release build, the Mac OS X crash report tool shows nsBlockBandData::Init at the top, probably because nsSpaceManager::GetTranslation gets inlined.
Updated•19 years ago
|
Updated•19 years ago
|
Attachment #208344 -
Attachment description: reduced testcase → reduced testcase (crashes at nsSpaceManager::GetTranslation)
Comment 3•19 years ago
|
||
0 PL_DHashTableFinish + 168
1 nsPropertyTable::GetPropertyInternal(void const*, unsigned, nsIAtom*, int, unsigned*) + 80
2 nsBlockFrame::GetFirstChild(nsIAtom*) const + 128
3 nsCSSFrameConstructor::FindFrameWithContent(nsFrameManager*, nsIFrame*, nsIContent*, nsIContent*, nsFindFrameHint*) + 244
4 nsCSSFrameConstructor::FindFrameWithContent(nsFrameManager*, nsIFrame*, nsIContent*, nsIContent*, nsFindFrameHint*) + 396
Comment 4•19 years ago
|
||
0 0 + 38572876
1 nsCSSFrameConstructor::ReinsertContent(nsIContent*, nsIContent*) + 676
2 nsCSSFrameConstructor::ContentRemoved(nsIContent*, nsIContent*, int, int) + 432
3 nsCSSFrameConstructor::ReinsertContent(nsIContent*, nsIContent*) + 80
4 nsCSSFrameConstructor::WipeContainingBlock(nsFrameConstructorState&, nsIFrame*, nsIFrame*, nsIFrame*) + 468
5 nsCSSFrameConstructor::ContentAppended(nsIContent*, int) + 2380
Is this fixed by the patch in bug 310436?
Comment 6•19 years ago
|
||
Yes. None of the attachments here crash in a debug build with that patch applied.
Comment 7•19 years ago
|
||
And fixed in opt builds from atlantia (yesterday's nightly crashes; a very recent hourly doesn't), now that the patch in bug 310436 has been checked in :)
Should this be marked as fixed, wfm, or dup?
Updated•19 years ago
|
Whiteboard: [sg:nse?] → [sg:dupe 310436] keep confidential, reveals bug 306663
Updated•18 years ago
|
Attachment #208346 -
Attachment is private: true
Updated•18 years ago
|
Attachment #208347 -
Attachment is private: true
Updated•18 years ago
|
Whiteboard: [sg:dupe 310436] keep confidential, reveals bug 306663 → [sg:dupe 310436] testcases from bug 306663
Updated•18 years ago
|
Group: security
Assignee | ||
Updated•14 years ago
|
Crash Signature: [@ nsSpaceManager::GetTranslation() line 196]
You need to log in
before you can comment on or make changes to this bug.
Description
•